Training

Practical, practitioner-led training in IT security risk management and enterprise security architecture.

Our training courses are built for security professionals who need practical skills, not academic theory. Led by seasoned security professionals, every course focuses on what actually works in real organisations. Training can be delivered on-site or remotely.

IT Security Risk Management (ITSRM)

Based on the European Commission's ITSRM Guidelines and aligned with ISO 27005. Learn how to conduct security risk assessments, build security plans and embed risk management into the full system lifecycle.

Who should attend: Security Risk Managers, System/Service Owners, IT security practitioners.

What you will learn:

  • The ITSRM framework: process model, roles and responsibilities, artefacts and mindsets
  • The full risk assessment cycle: system characterisation, asset analysis, system modelling, risk identification and evaluation
  • Risk treatment: selecting proportionate security measures and building an implementation plan
  • Roles and governance: clear accountability from System Owner to Security Risk Manager
  • Producing the key ITSRM deliverables: the IT Security Plan, risk reports and the ITSRM log
  • Monitoring, reassessing and continuous improvement

Applied ESA - Essentials

A fast-paced, practical introduction to Enterprise Security Architecture. Learn the fundamentals and walk away with something you can use immediately. Built on leading frameworks including SABSA and TOGAF.

Who should attend: Security professionals new to ESA, IT architects adding a security focus, risk managers seeking architecture understanding.

What you will learn:

  • ESA fundamentals and business context
  • Risk-based architecture approach
  • Requirements gathering and modelling
  • Domain architecture essentials
  • Policy and governance basics
  • Process modelling for security

What you will get: Ready-to-use templates, quick-start methodology, practical examples and case studies, certificate of attendance, after-course support.

Applied ESA - Professional

A deep-dive programme where you build your organisation's ESA artefacts. Guided by experts, you create templates you can implement immediately. Theory meets practice. Includes certification exam.

Who should attend: Security architects building capability, professionals establishing an ESA practice, enterprise architects adding security.

What you will learn:

  • Everything from ESA Essentials, plus:
  • Comparison of frameworks
  • Building comprehensive ESA programmes
  • Advanced domain architectures
  • Governance and maturity frameworks
  • Maintaining your architecture

What you will get: Custom-built startup templates, comprehensive framework toolkit, certification (exam), after-course support.

Interested in our training?

Get in touch to discuss your training needs and availability.

Contact Us